Anybody from Cisco to share some detail about timers for internal information about devices (client devices and APs) to appear as disconnected in Catalyst 9800?
What I mean is that when a client disconnect from the LAP and join to another infrastructure, C9800 shows that client connected in the output for "show wireless client summary" and "show wireless client mac <MAC> detail". This information is there until few minutes, maybe waiting for the client to roam or reconnect. The same happen to APs when the CAPWAP tunnel goes down or the AP is off.
The thing is that showing cached information harden any troubleshooting efford for the operators and administrators, as we need to wait for that information timer to expire for the devices to appear actually not connected.
The only way to verify that information is to go to the latest AP where the client was connected to. For the APs is to look into the switch where the AP is connected to.
The main question is why? The AP could send that information in real time once it happen, or even some seconds after waiting for the EAP timer if the client has disconnected.
The controller will ignore disassociation or deauthentication frames sent by the clients if they are not using 802.11w PMF. The client entry will only get deleted immediately upon reception of such a frame if the client uses PMF. This is to avoid denial of service by malicious device since there is no security on those frames without PMF.
This is the same for AireOS too.
There is another case, if client move between two WLCs that don’t share mobility between them you will see the same thing (the client will be reported as connected from the old WLC up to 5 minutes “default” before the WLC will delete it.
Another case when client move between two WLCs that have mobility between them but the APs in Flex Local switching (don’t know why anyone would configure such deployment but it is a case) in this scenario, there will be no mobility packets between the two WLCs to inform the other WLC to delete the client from the old WLC.
Sorry Grendizer but maybe I have explained myself badly. I'm looking for "device information timeout" from "show" commands.
If you invoke "show wireless clien summary" or "show ap summary" you can see devices that are not currently there for a certain ammount of time, because they've left of they have connectivity problems. This way you cannot do a real troubleshooting, you actually need to go to the AP to have real-time information.
Hello Community, I have an issue where APs do not connect to the WLC. Connection is made over VPN. Until yesterday all 3 APfailed with below errors. We change the LAN connection to a cisco router and now one of the AP magically connected to the...
Where to download
Attached files on this post
Alternatively, cloud version (only summaries)
New implementation for the WLC Config Analyzer. it is a new re-write of the application, with clean up and improved checks
Support for IOS...
Cisco Champion Radio · S8|E6: Fastlane+ Optimizes Network and Device Communication
Cisco Fastlane+ is a co-developed solution with Apple that significantly improves the experience of any Wi-Fi 6 capable iPhone or iPad connected to a Cisco Catalyst 9130 A...
We are pleased to announce the immediate availability of the IOS-XE release 17.4.1 for the Catalyst Wireless Controllers. The new code is now posted on the CCO and can be found at this link:
Table of Contents
The purpose of this document is to provide step-by-step instructions regarding how to connect your read-only Catalyst 9800 WLC or AireOS WLC with Cisco DNA Center for Assurance monitoring through manual configuration. I...